The Macrosite for News, Analysis and Opinion about the Future of the Internet
Kim Davis

Anonymous Plays Robin Hood

Written by Kim Davis
12/28/2011 14 comments
no ratings
DISCUSS     Email This

Sherwood in the twilight, is Robin Hood awake?
Grey and ghostly shadows are gliding through the brake,
Shadows of the dappled deer, dreaming of the morn,
Dreaming of a shadowy man that winds a shadowy horn.

Thus Alfred Noyes wrote of Sherwood Forest a hundred years ago. Flash forward to 2011, and his muse would find him writing of a shadowy tribe that wields a shadowy hack. Or so Anonymous would have us think.

The merry band of Internet rascals has been at it again, purportedly stealing from the rich to give to the poor. Yes, this time around, Anonymous seems actually to have been stealing money, rather than just causing damage and embarrassment through DDOS attacks.

The target was Stratfor, and at the time of this writing, its Website was still "undergoing maintenance." Stratfor (or Strategic Forecasting Inc.) is an Austin global intelligence business that delivers private political, economic, and military briefings to Fortune 500 companies and government agencies. It has been described as a "shadow CIA."

The Christmas Day newsflash revealed that members of Anonymous were trumpeting the theft of Stratfor's confidential client list, together with addresses and credit card data. The plan, according to the perpetrators, was to use the information to make Christmas donations.

This actually seems to have happened, with the group posting images of receipts from charities for gifts based on breached credit card accounts. Recipients reportedly included the Red Cross, CARE, and Save the Children.

Anonymous seems to have come up with a rich haul on this occasion. Analysts estimate that the hackers retrieved more than 50,000 unique credit card numbers and almost as many unique email addresses. The group also claims to have several million emails.

The damage is hard to quantify from the limited reports of fraudulent charges to credit cards that have so far emerged, but again, the ease with which exploits can be mounted against an enterprise that prides itself on the confidentiality and security of the information it holds is breathtaking.

Apart from the mere matter of it being criminal, there are some obvious flaws in Anonymous's "Robin Hood" strategy. These include the likelihood that fraudulent charges will simply be subject to a chargeback to the charities that received the money, and the possibility that the inadvertent donors are not all rich corporations.

For example, a Homeland Security Department employee reported fraudulent charges against his credit card, saying, "They took money I did not have. I think why me? I am not rich."

But wait. Was it an Anonymous hack after all? Responsibility was claimed by "Sabu," regarded by some as a leader of Anonymous. Some alleged Anonymous hacktivists have denied it, praising Stratfor as "a media source, protected by the freedom of press, a principle which Anonymous values greatly."

At which point the sane among us must shake our heads in disbelief and say something like -- whatever, dudes, if you're all going to be "anonymous," what do you expect? One thing's for sure: If those responsible for the latest attack end up in court, they won't be anonymous any longer.

— Kim Davis Follow me on TwitterVisit my LinkedIn pageFriend me on Facebook, Community Editor, Internet Evolution
Channel: Security
Tags: Government
DISCUSS     Email This
Current display:       newest comments first       display in chronological order
Page 1 of 2   Next >
The Dream Chaser
Rank: Cyborg
Thursday December 29, 2011 3:55:53 PM
no ratings

Plus the lastest . . US-CERT warned the WPS PIN used by many routers to secure wireless networks could be exposed through decoding and it recommended disabling the PIN.  

Kim Davis
Thinkernetter
Thursday December 29, 2011 3:47:44 PM
no ratings

Yes, Bolingbroke, there are disturbing statistics about the number of passwords rated as "easy" to break.

The show continues with the same hacking team claiming responsibility for stealing data from SpecialForces.com, a veteran-run website which seems to deal in military memorabilia.

 

More here.

 

Bolingbroke
IQ Crew
Wednesday December 28, 2011 4:28:04 PM
no ratings

Fallout from this most current hack comes from the published list of lame passwords from you would think people who should know better. Here are some that used a date as a password

Cisco: 5 employees – including a high ranking executive who used a date for his password.
Juniper: Only 1
Gartner: 4 industry analysts
IBM: 8 employees
Microsoft: 3
Raytheon: 12 employees
SAIC: 15

Among the passwords appearing is "lovecakes".

torriatte
IQ Crew
Wednesday December 28, 2011 3:59:00 PM
no ratings

Not sure how many of you had heard of Stratfor until this happened but I have been getting their (free) email newsletter for a number of years. They REALLY know what's going on and you get a very well rounded look into things. I've given them no money so I'm OK. But as large as their client base is Anonymous could have ticked off some very interesting individuals with resources unheard of. This could have been a BIG mistake on their part if indeed they or one of their "members" did it...

JMHO :-)

Chuck

Kim Davis
Thinkernetter
Wednesday December 28, 2011 3:43:27 PM
no ratings

I think everyone I spoke to has received that bogus Times email.  Wow.

Kim Davis
Thinkernetter
Wednesday December 28, 2011 3:42:48 PM
no ratings

Good question, Victor.  I don't know how the guy's information ended up getting stolen, but I suspect we don't truly know that his card was fraudulently used as a direct result of this exploit either.

Bolingbroke
IQ Crew
Wednesday December 28, 2011 3:41:54 PM
no ratings

And I received one of the bogus emails informing me that my subscription had been cancelled. Now that it happened to me it is not very funny at all, harumpff!

Bolingbroke
IQ Crew
Wednesday December 28, 2011 3:15:16 PM
no ratings

Yikes, Mary, all this month I've been reining myself in and thought, no doubt wrongly, that the holiday season had run out of steam, well run out of steam here in the Bolingbroke Compound. But I see that it still holds sway in the Jander backyard. Well then it was an obvious lame attempt on my part at injecting a comedic interlude into the procedings, but it obviously fell flat. Well back to the drawing board with my mentor Gilbert Gottfied.

If you think it best I can delete the post or at least change my IE name to Scrooge McDuck.

victor
Rank: Cyborg
Wednesday December 28, 2011 3:10:08 PM
no ratings

Both times that I have seen this story, I think to myself why would an employee of Homeland Security being using his personal credit card to pay a government vendor for reasearch information that I assume is extremely expensive.

Can I get gifts for my family at Stratfor ???

Mary Jander
Thinkernetter
Wednesday December 28, 2011 3:02:03 PM
no ratings

Now, that's a heartwarming thought for the holiday season, Bolingbroke!

Why, may I ask, do these organizations prompt your suspicions?

Page 1 of 2   Next >
The ThinkerNet does not reflect the views of TechWeb. The ThinkerNet is an informal means of communication to members and visitors of the Internet Evolution site. Individual authors are chosen by Internet Evolution to blog. Neither Internet Evolution nor TechWeb assume responsibility for comments, claims, or opinions made by authors and ThinkerNet bloggers. They are no substitute for your own research and should not be relied upon for trading or any other purpose.
previous posts from Security Clan Editor's Blog
Kim Davis
Kim Davis   6/18/2013   7 comments
Last week we saw that whistlebower Edward Snowden's claims about a so-called Prism program looked full of holes.
Kim Davis
Kim Davis   6/11/2013   32 comments
Edward Snowden was so convinced that the Prism program involved secretive surveillance through Internet backdoors that he walked out on his job and his girlfriend, spoke to the media, and resigned himself to jail, or worse. It turns out, he might just be wrong.
Kim Davis
Kim Davis   6/5/2013   29 comments
In one of the nastiest -- not to mention large scale and long-term -- hacking exploits yet to be reported, it appears that the Chinese army has been rummaging through the data of those who have served in the US Armed Forces.
Kim Davis
Kim Davis   5/29/2013   17 comments
ASA Risk Consultants added its voice this week to the slowly growing chorus of voices demanding a coordinated international response to cyberattacks. In a research note circulated by IDG, ASA asserts that "nations will need to come to an agreement on how cyber warfare should be handled."
Kim Davis
Kim Davis   5/21/2013   21 comments
Extending existing US wiretap laws to give federal agencies easier backdoor access to Internet communications -- especially real-time P2P services like VoIP -- will give, not only aid and comfort, but also technical assistance, to the country's enemies. Not to mention cyberthieves.
5
of
Kim Davis
Aaron Swartz, RIP
1|14|13   |   2:36   |   6 comments

The Internet freedom activist, threatened with jail time, seems to have taken his own life last week.
Kim Davis
British Hacking Report Is 'Bonkers'
12|5|12   |   2:20   |   3 comments

Prime Minister David Cameron pledged to accept the hacking report’s recommendations unless they were “bonkers.” He’s rejecting the main one.
Mary E. Shacklett
Financial Services Policies Lag Tech Advances
12|4|12   |   2:18   |   6 comments

Regulations haven't kept up with advances in mobile devices and credit cards.
Wisdom of the Big Chair
FBI Turns Attention to Mobile Security
10|30|12   |   3:45   |   8 comments

The FBI recently issued a warning to smartphone users, highlighting two mobile malware applications: Loozfan, which steals personal information, and FinFisher, which is spyware that takes over a smartphone's functions.
Beau Brendler
Another Step Toward a Chinese Internet
7|2|12   |   1:44   |   3 comments

It wouldn't be the first time, but a group of Chinese engineers has proposed a means by which the Internet's root could be split, enabling secondary, independent networks that could be government-controlled. The Internet's root security committee is taking such proposals seriously.
Wisdom of the Big Chair
World War III Will Be Waged Online
6|26|12   |   3:23   |   7 comments

Recently, security software supplier Kaspersky identified Win32.Flame as malicious code that seems to have been developed, not by hackers, but by government agencies. Warring nations may set aside their bombs and wage their wars online.
Kim Davis
Assange's Day of Reckoning Approaches
5|31|12   |   2:48   |   21 comments

Whether it be sexual assault charges in Sweden or espionage charges in the United States, Julian Assange will one day have to face the music.
Mary E. Shacklett
Law Will Define Next-Gen Privacy
4|25|12   |   1:48   |   7 comments

The plan for unmanned police drones to patrol traffic and other city conditions in Seattle has sparked a new set of legal concerns about privacy. Law traditionally lags technology, but we can expect now to see a new round of activity in the courts as legal definitions begin to emerge on what "next-gen privacy" will look like.
Beau Brendler
Terrorism Expert Says US Gave Away Stuxnet Tech
4|4|12   |   3:29   |   9 comments

US counterterrorism expert Richard Clarke, who came to prominence with his prescient warnings before the 9/11 attacks, tells Smithsonian Magazine the US was responsible for the Stuxnet supersmart worm that attacked parts of nuclear reactors in Iran – and in the process, has given away one of the world's most sophisticated cyberweapons.
Wisdom of the Big Chair
Feds Provide Solution to Android's Security Problems
2|2|12   |   2:24   |   6 comments

Malware designed to infect Google Android smartphones has increased dramatically, and now the government is stepping in. The National Security Agency has developed SE Android, a system that tries to close up its security holes.
IETV: the thinkerNet on film
5
of
John Kennedy
How Big-Data Is Changing Marketing
6|13|13   |   1:07   |   1 comment

Big-data and analytics tools enable marketers to understand customers as individuals, identifying unmet needs and addressing each customer as a "segment of one," says John Kennedy, VP corporate marketing, IBM.
Kim Davis
Big-Data Can’t Always Sell Wine
5|21|13   |   2:23   |   10 comments

Whole Foods Global Wine Purchaser Doug Bell told me about some of the constraints on using analytics in the US wine market.
Paul J. Fleuranges
Digital Signage Keeps NYC Subway Straphangers on Track
5|6|13   |   3:51   |   1 comment

New York's Metropolitan Transit Authority is conducting a pilot test of digital kiosks to guide subway users to where they want to go more efficiently and at lower cost.
Kim Davis
Fast Forward to the Future
4|23|13   |   2:29   |   20 comments

A look back at tech writing in the 90s makes us wonder where enterprise IT will be 20 years from now.
Mitch Wagner
Google Launches Its Most Depressing Service Yet
4|15|13   |   2:59   |   10 comments

Google's new Inactive Account Manager lets you control how Google disposes of your accounts when you die.
Second Shooter
Argument Over Top-Level Domains Is 'Stupid'
4|11|13   |   2:07   |   3 comments

The whole Amazon.reader debate is a double-stupid. It's stupid to think that there's any e-book buyer who doesn't know Amazon's URL, and it was stupider to let ICANN launch the whole free-form TLD initiative to start with.
Kim Davis
Ladies, Your Tablet Awaits
3|21|13   |   2:22   |   37 comments

ePad Femme is the world’s first tablet “made exclusively for women.”
Wisdom of the Big Chair
NFC Moves Into the Mainstream
3|20|13   |   2:16   |   No comments

While NFC's original goal was to enhance mobile commerce applications, it is finding its way into a number of other uses, which is creating both opportunity as well as challenges for IT departments.
Wisdom of the Big Chair
Integrating Security Into Your Cloud Contract
3|19|13   |   3:35   |   No comments

Enterprises would like to move to cloud computing but are hesitant because they are concerned about providers’ ability to secure company data. Here are some tips that help to ensure that if breaches occur, the business is not left holding the bag.
Brian Baron
How Edmunds.com Collects Customer Information
3|18|13   |   1:15   |   No comments

Edmunds separates customers into segments based on the info it collects on its site and from partners, and uses that to push out custom content, said Brian Baron, director of business analytics for Edmunds.com, at Predictive Analytics Innovation Summit.
2pm EDT
Fri
Jun 21st
an IBM information resource
sponsored content
big blue blog
Todd Watson
Todd Watson   6/18/2013   Post a comment
The IBM Smarter Commerce Global Summit in Monaco kicked into high gear today, and we've already begun to see news emerging from that lovely city-state by the sea.
an IBM information resource
sponsored content
Expert Integrated Systems: Changing the Experience & Economics of IT
In this e-book, we take an in-depth look at these expert integrated systems -- what they are, how they work, and how they have the potential to help CIOs achieve dramatic savings while restoring IT's role as business innovator.
READ THIS eBOOK
your weekly update of news, analysis, and
opinion from Internet Evolution - FREE!
REGISTER HERE
Wanted! Site Moderators
Internet Evolution is looking for a handful of readers to help moderate the message boards on our site – as well as engaging in high-IQ conversation with the industry mavens on our thinkerNet blogosphere. The job comes with various perks, bags of kudos, and GIANT bragging rights. Interested?

Please email: moderators@internetevolution.com
Internet Evolution – not for thickies
Taking a Dim View of Home Energy Management Tech
Mary E. Shacklett
Energy consumption is a primary contributor to global warming. At the end of 2012, 40 percent of energy consumption in the US came from commercial and residential buildings.
CLICK FOR MORE
Checklist for a Watertight Cloud Computing Contract
Charlotte Erdmann
Midsize businesses rarely achieve the same standards of security in their own datacenters as professional providers that specialize in delivering these services to organizations.
CLICK FOR MORE
Checklist for a Watertight Cloud Computing Contract
Charlotte Erdmann
Midsize businesses rarely achieve the same standards of security in their own datacenters as professional providers that specialize in delivering these services to organizations.
CLICK FOR MORE
IT's Time for PaaS Is Here
Jeff Kaplan
It was about 10 years ago when a new generation of software-as-a-service (SaaS) alternatives started to gain acceptance and adoption among organizations of all sizes. And it has only been about five years since Amazon Web Services captured the marketplace's attention with Amazon EC2 and Amazon S3, which opened the door to a vast array of infrastructure-as-a-service (IaaS) offerings. Now, the third piece of the cloud computing puzzle is beginning to win over organizations seeking to build their own apps: platform-as-a-service (PaaS).
CLICK FOR MORE
Checklist for a Watertight Cloud Computing Contract
Charlotte Erdmann
Midsize businesses rarely achieve the same standards of security in their own datacenters as professional providers that specialize in delivering these services to organizations.
CLICK FOR MORE
Checklist for a Watertight Cloud Computing Contract
Charlotte Erdmann
Midsize businesses rarely achieve the same standards of security in their own datacenters as professional providers that specialize in delivering these services to organizations.
CLICK FOR MORE
Amazon Revolutionizes Book Publishing
Mansur Hasib
The publishing world has long been controlled by powerful companies with high costs, barriers to access, restrictions on distribution, one-sided copyright ownership contracts, and lengthy delays in getting critical information and knowledge out to a broad audience. In this world it often seemed all but the most famous of authors controlled little while publishers controlled everything. In the academic community, the sad result has been an excessive price increase in the cost of textbooks. Technology is finally empowering authors.
CLICK FOR MORE